本地验证软件反编译
本帖最后由 gang9881 于 2016-3-11 14:08 编辑本人是网维界的老手,却是破解界的小白。碰到个本地验证软件,验证好后却是作者的ID和密码,现在问题是怎么反编译xy.exe替换成自己的
破解大神看图
00594477 .55 PUSH EBP ;kernel32.75220000
0059448F > \61 POPAD
00594490 .- E9 D683F2FF JMP spoolers.004BC86B
00594495 00 DB 00
00594496 00 DB 00
00594497 00 DB 00
00594498 B0445900 DD spoolers.005944B0
0059449C 0C455900 DD spoolers.0059450C
005944A0 94A85800 DD spoolers.0058A894
005944A4 00 DB 00
005944A5 00 DB 00
005944A6 00 DB 00
005944A7 00 DB 00
005944A8 00 DB 00
005944A9 00 DB 00
005944AA 00 DB 00
005944AB 00 DB 00
005944AC 00 DB 00
005944AD 00 DB 00
005944AE 00 DB 00
005944AF 00 DB 00
005944B0 00 DB 00
005944B1 00 DB 00
005944B2 00 DB 00
005944B3 00 DB 00
005944B4 00 DB 00
004BC9EA E8 ABA20500 CALL spoolers.00516C9A
004BC9EA E8 ABA20500 CALL spoolers.00516C9A
004BC9EF 8BF8 MOV EDI, EAX
00516C9A .B5 5B MOV CH, 0x5B
00516C9C .FFE5 JMP NEAR EBP
00516C9A . /E9 3FF50000 JMP spoolers.005261DE
0052B5FE .61 POPAD
005272C6 .61 POPAD
005272D8 .5C POP ESP
0052DC7D .61 POPAD
JMP 00443DF0
JMP 004BCBD2
jmp 00404550
JMP 00410DB0
JMP 00440DA0
0052DC55 .61 POPAD
004BCBD2 55 PUSH EBP
004BCBD3 8BEC MOV EBP, ESP
004BCBD5 83EC 04 SUB ESP, 0x4
页:
[1]